In the Common Criteria (CC) framework, the Security Target (ST) is a document that outlines the specific security requirements and evaluation criteria for a particular product or system. It provides the detailed security attributes and assumptions that the product must meet, including both functional and assurance requirements. The ST is a key part of the evaluation process and serves as the basis for the evaluation of the product against the Common Criteria.
It is tailored to the specific product being evaluated and serves as the formal basis for security evaluations by ensuring that the product's security features align with the security objectives.
In the Common Criteria (CC) framework, the Security Target (ST) is a document prepared by the developer or vendor. It defines the product-specific security functionality and assurance requirements.
D. A document that includes a product-specific set of security criteria.
The Security Target is a critical document in the Common Criteria (CC) certification process. It defines the security requirements and objectives for a specific product or system to be evaluated. The ST outlines the security features and functions that the product or system is expected to provide, as well as the specific evaluation criteria that will be used to assess its security. This document serves as the basis for the evaluation process and helps ensure that the product or system meets the desired security requirements.
D -
The option that most accurately describes the Security Target (ST) in the Common Criteria framework is D - A document that includes a product specific set of security criteria.
The Security Target is a document created by the vendor that identifies the specific security functions and assurances for their product. It outlines the security claims, objectives, requirements, and evaluation criteria for that particular product.
The Protection Profile (B) is the product-independent set of criteria for a class of products.
The Policy (A) defines security rules.
The Target of Evaluation (C) is the actual product/docs being evaluated.
the Security Target uniquely contains the vendor-defined security features and evaluation requirements tailored to their specific product undergoing Common Criteria assessment.
This section is not available anymore. Please use the main Exam Page.CISSP Exam Questions
Log in to ExamTopics
Sign in:
Community vote distribution
A (35%)
C (25%)
B (20%)
Other
Most Voted
A voting comment increases the vote count for the chosen answer by one.
Upvoting a comment with a selected answer will also increase the vote count towards that answer by one.
So if you see a comment that you already agree with, you can upvote it instead of posting a new comment.
a_kto_to
1 month, 2 weeks agoBigITGuy
2 months, 2 weeks agoTheManiac
6 months, 4 weeks agoGuardianAngel
10 months, 1 week agoSoleandheel
1 year agoCoolCat22
1 year agoCoolCat22
1 year agoInclusiveSTEAM
1 year, 1 month agoErnestokoro
1 year, 8 months agojackdryan
1 year, 7 months agoBodatiousbob
1 year, 9 months ago